diff --git a/.github/workflows/stackhpc-build-kayobe-image.yml b/.github/workflows/stackhpc-build-kayobe-image.yml
index 2d057ec96..b535dc03e 100644
--- a/.github/workflows/stackhpc-build-kayobe-image.yml
+++ b/.github/workflows/stackhpc-build-kayobe-image.yml
@@ -42,7 +42,7 @@ jobs:
   build-kayobe-image:
     name: Build kayobe image
     if: inputs.if || github.repository == 'stackhpc/stackhpc-kayobe-config' && github.event_name == 'push'
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-22.04
     permissions:
       contents: read
       packages: write
diff --git a/.github/workflows/stackhpc-pull-request.yml b/.github/workflows/stackhpc-pull-request.yml
index f5cfb90de..aba6bacb7 100644
--- a/.github/workflows/stackhpc-pull-request.yml
+++ b/.github/workflows/stackhpc-pull-request.yml
@@ -13,7 +13,7 @@ jobs:
   # would skip the workflow entirely, and would prevent us from making the
   # aio jobs required to pass (a skip counts as a pass).
   check-changes:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-22.04
     permissions:
       pull-requests: read
     name: Check changed files
diff --git a/etc/kayobe/kolla-image-tags.yml b/etc/kayobe/kolla-image-tags.yml
index 737f5a8c9..a4091e931 100644
--- a/etc/kayobe/kolla-image-tags.yml
+++ b/etc/kayobe/kolla-image-tags.yml
@@ -28,8 +28,8 @@ kolla_image_tags:
     rocky-9: zed-rocky-9-20240301T100039
     ubuntu-jammy: zed-ubuntu-jammy-20240301T100039
   neutron:
-    rocky-9: zed-rocky-9-20240202T141530
-    ubuntu-jammy: zed-ubuntu-jammy-20240202T143208
+    rocky-9: zed-rocky-9-20250304T113959
+    ubuntu-jammy: zed-ubuntu-jammy-20250304T113959
   nova:
     rocky-9: zed-rocky-9-20240711T104152
     ubuntu-jammy: zed-ubuntu-jammy-20240711T101422
diff --git a/releasenotes/notes/neutron-cve-068b1299a304ee12.yaml b/releasenotes/notes/neutron-cve-068b1299a304ee12.yaml
new file mode 100644
index 000000000..0b179c127
--- /dev/null
+++ b/releasenotes/notes/neutron-cve-068b1299a304ee12.yaml
@@ -0,0 +1,6 @@
+---
+fixes:
+  - |
+    Updated Neutron container image tags to fix CVE-2024-53916. See `#2037002
+    <https://bugs.launchpad.net/neutron/+bug/2037002>`__ for more
+    details.